082acfeb5cbfe63c20a6839e53174dfc_JaffaCakes118

General

Target

082acfeb5cbfe63c20a6839e53174dfc_JaffaCakes118
Size

733KB
MD5

082acfeb5cbfe63c20a6839e53174dfc
SHA1

bc3d38a56f124f3275cc4bad239c8ea6de943b22
SHA256

739c5d060b6117da919d4052501ea013927a137f6453603ea12f0ce5dc153a28
SHA512

97978fa6dcf83d38c5c537e852670f3cf14b7e6d97ad6c34a6a05c476e3b78106906bf0af254ef81c0604006e81187576f78729612840ce5005e04c52eb4958a
SSDEEP

12288:L/lLrfybm9M1Qp9wS97s7Q5EVfh4444444rzU4:L9LryKK6GS97skMh4444444rQ4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
082acfeb5cbfe63c20a6839e53174dfc_JaffaCakes118

Files

082acfeb5cbfe63c20a6839e53174dfc_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e44f343a788365b9757fd9334af006f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GlobalAlloc
TerminateProcess
GetStringTypeW
ResetEvent
GetCurrentProcess
SetUnhandledExceptionFilter
SetFilePointer
RaiseException
GetProcAddress
GetCommandLineA
LockResource
GetEnvironmentStrings
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
GetOEMCP
GetFileAttributesA
ReleaseMutex
LCMapStringW
EnterCriticalSection
VirtualAlloc
HeapAlloc
GetProcessHeap
GetModuleHandleA
GetVersion
ExitProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
SetLastError
TlsGetValue
GetLastError
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
InterlockedDecrement
InterlockedIncrement
InitializeCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
HeapReAlloc
MultiByteToWideChar
GetStringTypeA
LCMapStringA

user32

TrackPopupMenu
GetClientRect
GetDC
GetParent
PostQuitMessage
KillTimer
DefWindowProcA
UpdateWindow
DispatchMessageA
TranslateMessage
GetMessageA
SetTimer
CreateWindowExA
RegisterClassExA
LoadCursorA
LoadIconA

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 680KB - Virtual size: 681KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e44f343a788365b9757fd9334af006f6

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 48KB - Virtual size: 47KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 680KB - Virtual size: 681KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 680KB - Virtual size: 681KB